Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/DkQEt78w4vWDPZWBJtYqJw6w4bSXP4zC8Kigd1pocHk5/1/323830343a3930633a3230343a3a2f34382d3438203d3e20323632363137.roa
File: 323830343a3930633a3230343a3a2f34382d3438203d3e20323632363137.roa (raw, json)
Hash identifier: EhZLt4B3xEZmvpDeRnfDlpoZJRy/eX9VNG8BnZaOCr8=
Subject key identifier: 4B:D0:EF:9C:90:2E:77:8A:2C:17:6F:80:67:08:75:3C:07:26:9C:AA
Certificate issuer: /CN=00078D2B578982663EFE91FC4B5397C48403E2E4
Certificate serial: 41DA7ABB3C24D7925BC1450B41514148C1F1118F
Authority key identifier: 00:07:8D:2B:57:89:82:66:3E:FE:91:FC:4B:53:97:C4:84:03:E2:E4
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/00078D2B578982663EFE91FC4B5397C48403E2E4.cer
Subject info access: rsync://rpki-repo.registro.br/repo/DkQEt78w4vWDPZWBJtYqJw6w4bSXP4zC8Kigd1pocHk5/1/323830343a3930633a3230343a3a2f34382d3438203d3e20323632363137.roa
Signing time: Wed 05 Mar 2025 20:36:09 +0000
ROA not before: Wed 05 Mar 2025 20:31:09 +0000
ROA not after: Wed 04 Mar 2026 20:36:09 +0000
asID: 262617
IP address blocks: 2804:90c:204::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:da:7a:bb:3c:24:d7:92:5b:c1:45:0b:41:51:41:48:c1:f1:11:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00078D2B578982663EFE91FC4B5397C48403E2E4
Validity
Not Before: Mar 5 20:31:09 2025 GMT
Not After : Mar 4 20:36:09 2026 GMT
Subject: CN=4BD0EF9C902E778A2C176F806708753C07269CAA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:9c:75:2f:e0:d6:de:fa:e8:3d:1b:0e:22:7d:
14:e9:3f:d6:24:b6:6d:89:c4:dd:b4:fa:38:82:93:
d8:59:16:ea:5a:f2:a1:a9:6e:71:25:7f:d3:ff:05:
a1:ef:e0:dc:a1:2a:3a:d7:e4:54:67:3f:73:1e:be:
f5:fd:35:5f:5a:3a:8d:5b:71:70:11:a3:f6:65:b9:
63:7e:d5:1e:a5:3a:c2:e3:df:69:17:84:8d:1f:c9:
f0:4b:12:e2:15:46:58:63:0f:af:98:11:d9:7a:94:
86:f0:30:95:fe:c9:f1:f2:87:67:1c:98:cc:78:84:
9e:cf:98:e0:7f:27:a2:62:0c:09:27:9c:f9:9a:89:
3b:a0:37:b5:ad:31:44:ae:be:27:34:ae:c2:c1:27:
dc:ac:be:10:8b:d3:83:dd:c3:fe:bf:31:94:f2:25:
a9:25:0d:9e:46:cc:98:c2:26:ab:f6:64:cc:6c:ec:
ad:7e:a1:b5:c9:3b:d7:d7:e9:1b:15:d1:76:6d:3b:
2b:55:d6:0e:3d:07:e9:1c:de:cb:0d:ce:c2:be:2e:
a5:90:30:80:ed:c3:9a:33:bd:3d:a0:6d:27:3c:42:
72:3f:eb:57:5d:45:f5:d5:31:4b:2b:65:d0:96:9a:
59:16:ca:fa:01:6c:56:f5:fb:19:6a:90:01:a2:4e:
6f:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:D0:EF:9C:90:2E:77:8A:2C:17:6F:80:67:08:75:3C:07:26:9C:AA
X509v3 Authority Key Identifier:
keyid:00:07:8D:2B:57:89:82:66:3E:FE:91:FC:4B:53:97:C4:84:03:E2:E4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/DkQEt78w4vWDPZWBJtYqJw6w4bSXP4zC8Kigd1pocHk5/1/00078D2B578982663EFE91FC4B5397C48403E2E4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/00078D2B578982663EFE91FC4B5397C48403E2E4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/DkQEt78w4vWDPZWBJtYqJw6w4bSXP4zC8Kigd1pocHk5/1/323830343a3930633a3230343a3a2f34382d3438203d3e20323632363137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:90c:204::/48
Signature Algorithm: sha256WithRSAEncryption
97:a7:10:50:be:de:3a:8a:e9:b3:5a:88:3a:cf:c6:ff:01:e3:
92:35:58:a8:7e:95:9c:cc:7b:c6:34:43:f5:d0:6e:20:d9:56:
5a:57:b6:11:7b:4a:35:e6:6a:c5:4c:8f:cb:2f:f1:02:09:15:
62:22:c6:56:c7:22:ab:37:ca:35:35:6a:b5:3b:aa:4c:ef:78:
e2:ec:2a:b7:08:08:56:74:8a:71:c9:04:24:54:3e:aa:88:08:
7b:dc:df:51:c1:48:47:1b:63:0f:81:79:d4:e9:e2:db:d6:4c:
5c:ab:fa:dd:87:75:0a:6d:be:40:7d:93:0a:21:e7:e0:b6:7b:
bc:27:b1:b5:1a:c0:98:63:d7:4b:00:3b:43:e5:eb:1e:9d:9e:
be:c1:c6:78:02:6e:a5:94:9e:90:2a:49:ea:70:20:ae:d1:7b:
f8:3c:c2:b0:e3:20:41:fc:26:52:4f:01:f9:19:8c:26:0a:39:
ff:21:73:fe:25:58:fd:04:97:c6:4f:89:7d:21:fc:3c:0a:59:
c8:38:2a:0c:31:e6:48:6f:e6:43:8a:17:b7:b8:bc:bf:ef:7a:
fe:6d:7f:99:61:ca:a7:11:ef:f8:ef:74:b2:00:11:e2:48:bf:
f5:70:d3:ee:35:aa:30:f2:64:02:8b:f3:88:c4:cb:ea:79:bc:
8a:b8:7a:cf
-----BEGIN CERTIFICATE-----
MIIFTjCCBDagAwIBAgIUQdp6uzwk15JbwUULQVFBSMHxEY8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDAwNzhEMkI1Nzg5ODI2NjNFRkU5MUZDNEI1Mzk3QzQ4
NDAzRTJFNDAeFw0yNTAzMDUyMDMxMDlaFw0yNjAzMDQyMDM2MDlaMDMxMTAvBgNV
BAMTKDRCRDBFRjlDOTAyRTc3OEEyQzE3NkY4MDY3MDg3NTNDMDcyNjlDQUEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNnHUv4Nbe+ug9Gw4ifRTpP9Yk
tm2JxN20+jiCk9hZFupa8qGpbnElf9P/BaHv4NyhKjrX5FRnP3MevvX9NV9aOo1b
cXARo/ZluWN+1R6lOsLj32kXhI0fyfBLEuIVRlhjD6+YEdl6lIbwMJX+yfHyh2cc
mMx4hJ7PmOB/J6JiDAknnPmaiTugN7WtMUSuvic0rsLBJ9ysvhCL04Pdw/6/MZTy
JaklDZ5GzJjCJqv2ZMxs7K1+obXJO9fX6RsV0XZtOytV1g49B+kc3ssNzsK+LqWQ
MIDtw5ozvT2gbSc8QnI/61ddRfXVMUsrZdCWmlkWyvoBbFb1+xlqkAGiTm/tAgMB
AAGjggJYMIICVDAdBgNVHQ4EFgQUS9DvnJAud4osF2+AZwh1PAcmnKowHwYDVR0j
BBgwFoAUAAeNK1eJgmY+/pH8S1OXxIQD4uQwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vRGtRRXQ3OHc0dldEUFpXQkp0WXFKdzZ3NGJTWFA0ekM4S2lnZDFwb2NI
azUvMS8wMDA3OEQyQjU3ODk4MjY2M0VGRTkxRkM0QjUzOTdDNDg0MDNFMkU0LmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzAwMDc4RDJCNTc4OTgyNjYz
RUZFOTFGQzRCNTM5N0M0ODQwM0UyRTQuY2VyMIGyBggrBgEFBQcBCwSBpTCBojCB
nwYIKwYBBQUHMAuGgZJyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
L0RrUUV0Nzh3NHZXRFBaV0JKdFlxSnc2dzRiU1hQNHpDOEtpZ2QxcG9jSGs1LzEv
MzIzODMwMzQzYTM5MzA2MzNhMzIzMDM0M2EzYTJmMzQzODJkMzQzODIwM2QzZTIw
MzIzNjMyMzYzMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsG
AQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKAQJDAIEMA0GCSqGSIb3DQEBCwUAA4IB
AQCXpxBQvt46iumzWog6z8b/AeOSNViofpWczHvGNEP10G4g2VZaV7YRe0o15mrF
TI/LL/ECCRViIsZWxyKrN8o1NWq1O6pM73ji7Cq3CAhWdIpxyQQkVD6qiAh73N9R
wUhHG2MPgXnU6eLb1kxcq/rdh3UKbb5AfZMKIefgtnu8J7G1GsCYY9dLADtD5ese
nZ6+wcZ4Am6llJ6QKknqcCCu0Xv4PMKw4yBB/CZSTwH5GYwmCjn/IXP+JVj9BJfG
T4l9Ifw8ClnIOCoMMeZIb+ZDihe3uLy/73r+bX+ZYcqnEe/473SyABHiSL/1cNPu
Naow8mQCi/OIxMvqebyKuHrP
-----END CERTIFICATE-----
Generated at Mon Apr 7 06:29:02 2025 by rpki-client